Skip to content

docs: document pre-tge whitelist invariant#1630

Closed
hmzakhalid wants to merge 1 commit into
mainfrom
fix/audit-04-whitelist-invariant
Closed

docs: document pre-tge whitelist invariant#1630
hmzakhalid wants to merge 1 commit into
mainfrom
fix/audit-04-whitelist-invariant

Conversation

@hmzakhalid

@hmzakhalid hmzakhalid commented Jul 3, 2026

Copy link
Copy Markdown
Collaborator

What changed

Documents that the pre-TGE transfer whitelist is intentionally one-sided and limited to trusted operational addresses.

Why

Zenith audit issue 4 questioned the sender || recipient whitelist gate. The invariant is that CCA claims and bonding bypass this gate separately, so CCA bidders do not need to be whitelisted and whitelisted accounts must not be public forwarding bridges.

Validation

  • pnpm --dir packages/interfold-contracts test test/Token/InterfoldToken.spec.ts test/Token/InterfoldTicketToken.spec.ts
  • Push hooks passed: lint, pnpm version check, license headers, committee consistency
  • Noir circuit checks were skipped by the hook because nargo is not installed

@vercel

vercel Bot commented Jul 3, 2026

Copy link
Copy Markdown

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
interfold-dashboard Ready Ready Preview, Comment Jul 3, 2026 10:21am
2 Skipped Deployments
Project Deployment Actions Updated (UTC)
crisp Skipped Skipped Jul 3, 2026 10:21am
interfold-docs Skipped Skipped Jul 3, 2026 10:21am

Request Review

@hmzakhalid

Copy link
Copy Markdown
Collaborator Author

Superseded by combined remaining audit fixes PR #1640.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants